Tenable is redefining cybersecurity through an exposure-management approach that unifies visibility across cloud, IT, identity and OT systems.

Co-CEO Mark Thurmond argues this evolution is critical as organisations face machine-speed attacks and increasingly complex digital ecosystems.

“Traditional, reactive security models can’t keep up with machine-speed attacks and the scale of modern digital ecosystems,” he says.

“Exposure management is now essential – it’s the discipline that allows organisations to get ahead of risk instead of chasing alerts.”

From firefighting to fireproofing
Tenable positions exposure management as the next evolution of cybersecurity: unified visibility across cloud, IT, identity and OT environments, combined with AI-driven prioritization that identifies the small subset of vulnerabilities most likely to be exploited.

"Typically, only one to three percent of exposures matter," Thurmond explains. "Our platform uses defensive AI to identify and eliminate those critical risks before attackers can exploit them."

This capability is increasingly important for giga-projects that rely on massive IoT layers, autonomous systems, and high-value data flows. “These environments need a master blueprint for cyber risk – a single view that supports resilience, compliance and long-term operational excellence,” Thurmond says.

Tenable’s AI-powered platform also helps organisations align with regulatory mandates such as the National Cybersecurity Authority’s Essential Cybersecurity Controls, offering unified visibility and coordinated action across sprawling digital environments.

Long term security plans
In further evidence of its commitment to Saudi Arabia’s growth, US-headquartered Tenable recently established a legal entity in the Kingdom.

“This investment strengthens Tenable’s ability to serve the growing customer base and provide local access and support for its market-leading Tenable One Exposure Management platform,” says Thurmond, adding that Tenable actively supports the kingdom's focus on talent and skills by simplifying security through AI-driven automation.

Thurmond believes the next global phase of cybersecurity will be defined by the evolution of exposure management into a self-driving system, transforming it from a system of record into a system of action.

“The core breakthrough is the deep integration of defensive AI to counter adversaries executing attacks at machine speed,” he says, adding that Tenable is preparing to lead this shift by continuously building on its AI Exposure engine.

“This involves AI automating the remediation process, checking for patches, opening tickets, and scheduling follow-up scans in seconds,” he continues.

Tenable was recently ranked a Leader in the 2025 Gartner Magic Quadrant for Exposure Assessment Platforms, a recognition Thurmond says validates the industry’s shift from traditional vulnerability management to proactive exposure management.

Looking ahead to Black Hat MEA
Thurmond will deliver the opening keynote at Black Hat MEA 2025 on December 2 in Riyadh.

His session, “Beyond the Silos: Exposure Management in a New Age of Risk,” will examine how a growing attack surface, fragmented security tools and increasingly sophisticated adversaries are rendering traditional security models obsolete.

The keynote will assess these trends through the lens of Saudi Arabia’s major digital and AI investments – highlighting why a proactive, unified defensive posture is now essential to protect national progress.

Attendees are invited to join the keynote and visit the Tenable booth for live demonstrations of the AI-powered Tenable One Exposure Management Platform.